qb 8.0.0 was released this past week, and it brings with it a small handful of new features. While this is technically a major release, I don't expect anyone to actually have a breaking change. In fact, I expect this will save you time and headaches as it has for me.
Blog
CFCasts - A Peek Inside the Tech Stack
.png)
Being a new platform from Ortus, I wanted to take some time to dive in to the tech stack we are using to build CFCasts. Many people ask us how we would build a modern CFML site. Well, here's at least one answer.
ColdBox 6 RC Released!

We are so excited to bring you the first public release candidate of the next generation of ColdBox HMVC , version 6.0. Enjoy as we are almost ready for final release.
TestBox v4.0.0 Released!


We are excited to announce a major version release of [TestBox](/products/testbox) version 4.0.0. To install just use CommandBox: `install testbox --saveDev` or to update your TestBox installation `update testbox`. So let's explore this release!
ColdBox 6 Beta Released!

We are so excited to bring you the first public beta of the next generation of ColdBox HMVC , version 6.0. This version has been in development for quite some time now and it is introducing some revolutionary new programming techniques for ColdFusion (CFML) developers. This major bump is a huge leap into modern programming and breaksthrough to the next generation of apps we are building at Ortus. Enjoy!
VSCode CommandBox Extension Released

We are so excited to announce the first release of the CommandBox VSCode extension. This extension is thanks to the great work of (Kamasamak) and will integrate CommandBox into VS Code.
You are expected to have CommandBox installed on your system.
Just click on the VS Code extensions tab and search for commandbox
, install, refresh, play!
Quick v3.0.0 Alpha Released

It's finally here, the first alpha of Quick 3.0.0. Come read about the headline features of this next major release.
TestBox v3.2.0 Released!


We are excited to announce a new minor release of TestBox version 3.2.0. To install just use CommandBox: install testbox --saveDev
or to update your TestBox installation update testbox
. So let's explore this release
What's New With 3.2.0
Using CFConfig to apply Government STIGs to ColdFusion servers

I wanted to highlight a recent project I help a client out with, where we used CFConfig to help automate the process of applying government STIGs to ColdFusion servers. A STIG, or Security Technical Implementation Guide, is meant to standardize the process of setting up and auditing secure servers. If you manage servers in a government or corporate setting, you may be familiar with this. If not, you should still be automating your locks downs anyway, so keep reading.
ColdBox Security v2.0.0 Released!

We are so excited to release The ColdBox Security Module version 2.0.0. It has been quite a few years since we did a major version of our security module, but it is worth the wait. It is just easier to say we completely rewrote it in modern CFML and introduced modern Security practices, HMVC security to modules, annotation driven security and JWT token services. Never again write API security, we got you covered! We also completelty rewrote the documentation and now we have yet another awesome security book: https://coldbox-security.ortusbooks.com/
install cbsecurity
update cbsecurity
There are just too many things to talk about in this release, so we will just list out the major features and you can visit our docs for the complete rundown of ColdBox Security 2.0.0.
Introduction
The ColdBox cbsecurity module will enhance your ColdBox applications by providing out of the box security in the form of:
- A security rule engine for incoming requests
- Annotation driven security for handlers and actions
- JWT (Json Web Tokens) generator, decoder and authentication services
Features
- Ability to have global security rules
- Ability for modules to add their own security rules and action overrides
- Ability to distinguish between authentication and authorization issues
- Annotation driven cascading security for handlers and actions
- Security rules can exist in:
- XML File
- JSON File
- Database
- Models
- The rules can be configured to use regular expressions or simple snippets
- Can use ColdFusion authentication security
- Can leverage any custom authentication provider
- Plug any Authentication service or can leverage cbauth by default
- Capability to distinguish between invalid authentication and invalid authorization and determine an outcome of the process.
- Ability to load/unload security rules from contributing modules.
- Ability for each module to define it's own validator